This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: 4YTv8sSgn6GwzNk4w50OeViu4+bklE0bHsXRr+BN2EA= Subject key identifier: 79:C0:83:82:89:8B:58:23:4B:47:9E:7E:4D:00:48:8F:64:9E:58:B4 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 07B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 0785 Signing time: Thu 04 Dec 2025 20:35:01 +0000 Manifest this update: Thu 04 Dec 2025 20:35:01 +0000 Manifest next update: Thu 11 Dec 2025 20:35:01 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: 0ueVN3+O9BYa4sjJbmlxmVWhkffh9K8haB0CcFdhXCk=) 2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: hWwF88GIP3tV+NyMDvSvQLm3VEbfDC65iFXo9VhwYUk=) 3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: xKqf+n8kgniX6QnefZ1ax3dHrgOYPyD34X8HXDWa04o=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: O5r2+wXt4zH6hxOJA3sUCrB8yg9bHS1XDEYPpgUx1XQ=) 5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: LjX/y1bmr7lUb6+mhBpoHtfDQ+zCLBR7g1pGcdMOf00=) 6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: SGNPZCwfC0xAo0xM/Ak76M8pbN3zzIxkj9O1xC+I8EU=) 7: 9507206A63A111F092E32646C4F9AE02.roa (hash: rAuvyeznobZzFQMS0Fgkc4tf80FkzwtmDY5jMNACHCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1972 (0x7b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Dec 4 20:35:01 2025 GMT Not After : Dec 11 20:35:01 2025 GMT Subject: CN=6931f075-e89c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c0:0e:24:3e:1f:29:e0:fb:d7:a5:3d:18:2b: bd:d4:92:1b:2e:99:bd:af:1f:ce:73:6b:d3:49:e7: e1:02:41:9f:73:61:ba:6e:8a:81:73:70:76:de:da: bb:01:26:f6:98:fb:b5:93:ec:37:2d:87:6e:b9:98: ca:4e:fe:94:79:7e:c3:91:d2:6f:09:66:df:72:5a: 06:23:a9:52:4a:80:e5:be:05:da:f8:7b:ae:23:0e: b4:b0:7f:bb:de:5e:74:1f:b0:b6:7a:0b:f0:29:b0: 8d:65:63:5c:ba:d7:05:9e:b1:df:6d:01:93:65:ac: 73:db:5b:29:b2:e9:5c:10:5a:fa:88:0e:75:ef:77: 8f:8b:43:b4:6a:75:58:8d:b4:62:48:c7:fb:40:ad: 53:b8:a5:fa:27:c6:11:00:91:fe:c8:28:9c:e3:17: 83:47:a4:c2:f4:af:f5:03:18:19:8b:64:d5:ca:6f: d0:7c:26:5a:78:7a:2d:3a:68:e5:87:5e:4d:6b:5e: c2:a5:bd:7a:cd:07:48:2c:07:e7:84:d0:c1:e3:3b: de:7e:13:87:19:bb:c2:c5:c7:c4:77:66:77:df:ae: a6:20:af:f0:23:77:5d:7b:ac:b6:5a:a2:16:ae:e1: 00:fc:28:54:77:9f:8e:57:e4:1d:fd:6c:6c:66:26: b7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C0:83:82:89:8B:58:23:4B:47:9E:7E:4D:00:48:8F:64:9E:58:B4 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:f7:22:7d:68:67:cf:1e:26:7c:5d:05:3a:bd:a2:82:fe:21: 14:43:fd:2e:2f:a5:db:59:9b:da:3e:1d:fb:ed:a1:27:29:43: 8c:4a:09:bb:1b:c7:76:cd:55:30:64:87:fb:b6:0d:00:af:2e: 36:9c:e1:40:01:2f:84:94:ce:bb:b3:15:ce:1b:80:21:cb:85: fd:7f:dc:e0:21:74:07:fa:1f:2d:d7:68:0f:2e:36:1f:91:5c: 46:0b:1a:f8:18:61:da:ab:46:c9:d7:8b:04:08:81:bd:4f:43: 2c:a6:cf:14:c0:d5:a2:4b:80:a9:52:2e:74:98:ae:30:48:92: 0d:ec:f4:e9:27:a5:eb:38:3d:5f:11:02:e3:45:59:df:ae:49: 99:fd:ff:5e:09:a4:4b:a6:a6:b3:0d:1a:07:45:bf:43:12:ca: e8:d4:e4:8f:2d:d6:85:8e:da:86:77:3a:85:78:bf:b6:54:9b: 98:5d:b7:3d:ac:46:0e:c1:57:03:e6:3e:44:c6:2c:35:92:14: 09:b7:9e:b7:73:f0:25:2d:72:c7:78:c5:f9:60:8a:47:76:72: ee:62:88:0c:8c:02:cc:d2:32:3c:f0:3f:29:8d:a6:89:06:6d: 9b:b7:4c:0f:80:10:12:84:7c:4d:70:ad:81:b4:61:a5:4d:6f: 58:14:38:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUxMjA0MjAzNTAxWhcNMjUxMjExMjAzNTAxWjAYMRYwFAYD VQQDEw02OTMxZjA3NS1lODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08AOJD4fKeD716U9GCu91JIbLpm9rx/Oc2vTSefhAkGfc2G6boqBc3B23tq7 ASb2mPu1k+w3LYduuZjKTv6UeX7DkdJvCWbfcloGI6lSSoDlvgXa+HuuIw60sH+7 3l50H7C2egvwKbCNZWNcutcFnrHfbQGTZaxz21spsulcEFr6iA5173ePi0O0anVY jbRiSMf7QK1TuKX6J8YRAJH+yCic4xeDR6TC9K/1AxgZi2TVym/QfCZaeHotOmjl h15Na17Cpb16zQdILAfnhNDB4zvefhOHGbvCxcfEd2Z3366mIK/wI3dde6y2WqIW ruEA/ChUd5+OV+Qd/WxsZia3mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnAg4KJ i1gjS0eefk0ASI9knli0MB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA49yJ9aGfPHiZ8XQU6vaKC/iEUQ/0uL6XbWZvaPh377aEnKUOMSgm7 G8d2zVUwZIf7tg0Ary42nOFAAS+ElM67sxXOG4Ahy4X9f9zgIXQH+h8t12gPLjYf kVxGCxr4GGHaq0bJ14sECIG9T0Msps8UwNWiS4CpUi50mK4wSJIN7PTpJ6XrOD1f EQLjRVnfrkmZ/f9eCaRLpqazDRoHRb9DEsro1OSPLdaFjtqGdzqFeL+2VJuYXbc9 rEYOwVcD5j5Exiw1khQJt563c/AlLXLHeMX5YIpHdnLuYogMjALM0jI88D8pjaaJ Bm2bt0wPgBAShHxNcK2BtGGlTW9YFDie -----END CERTIFICATE-----Generated at Sat Dec 6 20:07:10 2025 by rpki-client